I do not know precisely why, but the Australian VoIP media seems to pick up a lot of good news items about VoIP security, if you take a look at any Blue Box episode, you'll often see that many of the news items we talk about come from Down Under. I don't know why, but they seem to have security as a partial focus. It's great to see and they are a very good source of news. One site there, VoIP News, is also the only one I've really seen to write a post about the VOIPSA Best Practices Project. We weren't really expecting people to write about it on news sites... the launch is really more low-key and we didn't do any active PR beyond blog posting and sending to email lists. Now, when we have the finished product that will be a different story.

Of course, to finish one must first start.. hopefully later today... just in time for me to start travelling for a week!

In the meantime, it's great to see this VoIP News site writing about us... I've seen several subscriptions already today from Australia.

Tags: best practices, security, voip, voip security, voipsa, voipsecurity

Cross-posting from Voice of VOIPSA where I posted this earlier today:

I am pleased to announce that the VOIPSA Best Practices project will be kicking off this week. As noted in the project description, the goal is to gather into one document the core set of "best common practices" that can be used to address the threats to VoIP that were outlined in the VoIP Security Threat Taxonomy project. I'm still making some changes to the wiki in advance of the formal project kickoff, but right now you can subscribe to the best practices email list if you would like to assist in the project. All are welcome, regardless of experience level. If you don't want to join a mailing list, updates will be posted here on this blog from time to time.

I went into a bit more detail in a subsequent post to the VOIPSEC mailing list, mentioning, for instance, that people who think they will be interested in editing/commenting on the actual text should make sure they are registered in the VOIPSA wiki.

I'm excited to get the project underway... I've been trying to get it launched for the last month or so, but between travel and RFP deadlines, the time has never seemed to be right. It's still not right, as I have to finish a couple of RFP contributions and then I'm off to London next week, but the project has to begin *sometime*. As I expected, I'm already seeing a good number of folks subscribing.. probably up around 50 and the news is just going out now, so I'll expect to see more in the next day or so.

My goal is to finish up some of the back-end wiki things tomorrow and then launch on Thursday.

If you are interested in contributing, please do follow the links and join the mailing list.

Tags: best practices, security, voip, voip security, voipsa, voipsecurity